4 matches found
CVE-2017-17519
batteriesConfig.mlp in OCaml Batteries Included aka ocaml-batteries 2.6 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL...
CVE-2017-17519
batteriesConfig.mlp in OCaml Batteries Included aka ocaml-batteries 2.6 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL...
CVE-2017-17519
Affected software: OCaml Batteries Included (aka ocaml-batteries) 2.6. Component: batteriesConfig.mlp. Issue: the configuration file does not validate strings before launching the program specified by the BROWSER environment variable, enabling remote attackers to perform argument-injection via a ...
CVE-2017-17519
batteriesConfig.mlp in OCaml Batteries Included aka ocaml-batteries 2.6 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL...